This tools parses key information from user specified log file and send to user specified server
The default configuration file config.yaml is located in the repo's root directory. There're several customizable configs:
- log_server.url: The url the analysis result will be sent to, default is
foo.com/bar - log_server.protocol: The protocal (http/https) the tool use to send data to the log server, default is
https - log_server.verify: Set it
trueif https is used, else set itfalse - log_server.cert_file: The
.pemfile path you use for SSL/TLS verification
You can run as below using the default configuration file:
python3 main.py -f syslog.logIf your configuration file is located somewhere else, run:
python3 main.py -c <config_file_path> -f syslog.logTo show response from server, specify option -s or --show-response
python3 main.py -f syslog.log --show-responseWith the configs below, we can send data to the httpbin server.
log_server:
# log server address
url: "httpbin.org/post"
# http or https
protocal: "https"
# whether we verify the server's TLS certificate
verify: true
# path to ssl client cert file (.pem)
cert_file: ""Run the command below:
python3 main.py -f syslog.logBy specifying -s or --show-response we can see the response and find the post data in it.
python3 main.py -f syslog.log --show-response